5 Replies Latest reply: Nov 28, 2012 1:21 AM by 974115 RSS

    using more than one authentication provider

    974115
      We need both users in WebLogic Authentication Provider and LDAP provider which we have set up to be able to log into BPM workspace, but only users in the first provider on the list can successfully login. What should the sequence of the providers and their control flags be?
        • 1. Re: using more than one authentication provider
          Ravi Jegga
          Hi
          NO. There is Nothing you can do, to make the users from both the Providers login into Workspace. A very complex work around is totally build your own custom authenticator, but I still doubt if that also works. Please see this below post for more details.

          Weblogic administrator account is inactive after enabling DB Authenticator

          Thanks
          Ravi Jegga
          • 2. Re: using more than one authentication provider
            Bill Wallen
            Another option is to leverage Oracle Virtual Directory (OVD) and virtualize multiple repositories into one provider. There is a licensing concern with OVD as it does not have a restricted-use facility.
            • 3. Re: using more than one authentication provider
              974115
              hi Bill,
              Thanks for your reply.
              Can you give me more explanation on how to leverage OVD, or a link to help me with that?
              Thanks
              • 4. Re: using more than one authentication provider
                Bill Wallen
                OVD - http://www.oracle.com/technetwork/middleware/id-mgmt/index-093158.html
                Docs - http://docs.oracle.com/cd/E23943_01/oid.1111/e10046/toc.htm
                • 5. Re: using more than one authentication provider
                  974115
                  Hi,
                  we have installed OVD and created an adapter to connect to our Active Directory. Then in console, we defined a provider to connect to OVD. we can see the users in console but none of those users can sign into BPM workspace and we get the following error:

                  Service error.
                  Internal Error; Service error occurs in IdentityService in method lookupUser.
                  Refer to the log file that is configured for oracle.soa.services.identity for mo
                  re details on this error and contact Oracle Support Services

                  at oracle.bpel.services.identity.client.AbstractIdentityServiceClient.lo
                  okupUser(AbstractIdentityServiceClient.java:195)
                  at oracle.bpm.papi.ora.mgr.OrganizationManager.lookupParticipant(Organiz
                  ationManager.java:51)
                  at oracle.bpm.papi.ora.mgr.OrganizationManager.lookupParticipant(Organiz
                  ationManager.java:41)
                  at oracle.bpm.papi.ora.ProcessServiceSessionAdapter.<init>(ProcessServic
                  eSessionAdapter.java:183)
                  at oracle.bpm.papi.ora.ProcessServiceAdapter.createSession(ProcessServic
                  eAdapter.java:146)
                  at oracle.bpm.workspace.adf.security.WorkspaceLoginBean.initPrincipal(Wo
                  rkspaceLoginBean.java:112)
                  at oracle.bpm.web.security.LoginBean.initSSOSession(LoginBean.java:110)
                  at oracle.bpm.web.security.AuthenticationUtil.authenticateModule(Authent
                  icationUtil.java:190)
                  at oracle.bpm.web.security.faces.AuthenticationPhaseListener.authenticat
                  e(AuthenticationPhaseListener.java:71)
                  at oracle.bpm.web.security.faces.AuthenticationPhaseListener.authenticat
                  ePhase(AuthenticationPhaseListener.java:61)
                  at oracle.bpm.web.security.faces.AuthenticationPhaseListener.afterPhase(
                  AuthenticationPhaseListener.java:53)
                  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(L
                  ifecycleImpl.java:472)
                  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(Lifecyc
                  leImpl.java:194)
                  at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
                  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run
                  (StubSecurityHelper.java:227)
                  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecuri
                  tyHelper.java:125)
                  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.jav
                  a:301)
                  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.j
                  ava:205)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter
                  (RegistrationFilter.java:106)
                  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterL
                  istChain.doFilter(TrinidadFilterImpl.java:446)
                  at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter
                  .java:60)
                  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterL
                  istChain.doFilter(TrinidadFilterImpl.java:446)
                  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilt
                  erImpl(TrinidadFilterImpl.java:271)
                  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilte
                  r(TrinidadFilterImpl.java:177)
                  at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFi
                  lter.java:92)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:1
                  79)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)

                  at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
                  5)
                  at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
                  il.java:442)
                  at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
                  a:103)
                  at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
                  71)
                  at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)

                  at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
                  5)
                  at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
                  il.java:442)
                  at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
                  a:103)
                  at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
                  71)
                  at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:13
                  9)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)

                  at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
                  5)
                  at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
                  il.java:442)
                  at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
                  a:103)
                  at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
                  71)
                  at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsF
                  ilter.java:27)
                  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
                  va:56)
                  ... 9 more
                  Caused by: oracle.bpel.services.workflow.client.WorkflowServiceClientException:
                  javax.xml.ws.WebServiceException: java.lang.RuntimeException: javax.xml.soap.SOA
                  PException: Error parsing envelope: most likely due to an invalid SOAP message.:
                  Illegal character ((CTRL-CHAR, code 18))
                  at [row,col {unknown-source}]: [1,281]




                  what should we do to resolve this problem?
                  thanks

                  Edited by: Maisie on Nov 27, 2012 11:21 PM